Hello,
Could you post the
aswMBR.txt logreprot, scan results from standalone avast-gmer ARK tool?
I would like to see the avast! boot-time scan log as well. It is located here, post that as well.
C:\Documents and Settings\All Users\Application Data\AVAST Software\Avast\report\
aswBoot.txt 1. Please download
ComboFix by
sUBs (
![](http://www.mcshield.net/personal/magna86/Images/IconComboFix.png)
)
from here and save it to your
Desktop.
If you are unsure how ComboFix works, read this guide.
--------------------------------------------------------------------
2. Temporarily disable your AntiVirus program, usually via a right click on the System Tray icon. They may interfere with Combofix.
If you are unsure how to do this please read this or this Instruction.
Instructions how to disable avast:
• Right click on the avast! system tray icon (
) in the lower right corner of the screen and scroll up to avast! shield controls;
• In the menu that appears, choose Disable Permanently. When you are prompted to turn off security, click Yes.
Note: Do not forget to turn back on this option after the cleaning by choosing avast! shield controls > Enable all shield options.--------------------------------------------------------------------
3. Run
ComboFix. Then, on
disclaimer window, click
I Agree! button.
- ComboFix will check if there is a newer version of ComboFix available.
Click Yes if prompted to download.
-If Recovery Console is not installed, ComboFix will offer download & installation.
Click Yes to allow ComboFix to install Recovery Console.
- ComboFix will scan your computer in stages, total of 50 stages.
Do not mouse-click around while ComboFix is running.
- If malware is detected, ComboFix will begin with its removal, and may need to restart Windows.
Note:If you see a message like "Illegal operation attempted on a registry key that has been marked for deletion" just restart your computer.
--------------------------------------------------------------------
4. When the tool is finished, it will produce a log report for you. (typical location: C:\
ComboFix.txt)
=> Attach log report (ComboFix.txt) back to topic.ComboFix shall also create addition log (typical location: C:\Qoobox\
ComboFix-quarantined-files.txt)
=> Please attach that report (ComboFix-quarantined-files.txt) as well.